Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/3J7jJ-jTAe8_vffnLS8zBt6RKUk.roa
File: 3J7jJ-jTAe8_vffnLS8zBt6RKUk.roa (raw, json)
Hash identifier: nXYewA9s9iPOxk/TPk1GuN26PPgxo4mIythO/zxvl3o=
Subject key identifier: DC:9E:E3:27:E8:D3:01:EF:3F:BD:F7:E7:2D:2F:33:06:DE:91:29:49
Certificate issuer: /CN=953a45de2807acc45cd252ed42f1383db7397ddb
Certificate serial: 018CCA2A34803EB49DB4C7C40AAAD0B3608E
Authority key identifier: 95:3A:45:DE:28:07:AC:C4:5C:D2:52:ED:42:F1:38:3D:B7:39:7D:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lTpF3igHrMRc0lLtQvE4Pbc5fds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/3J7jJ-jTAe8_vffnLS8zBt6RKUk.roa
Signing time: Tue 02 Jan 2024 12:33:32 +0000
ROA not before: Tue 02 Jan 2024 12:33:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21094
IP address blocks: 193.109.87.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:34:80:3e:b4:9d:b4:c7:c4:0a:aa:d0:b3:60:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=953a45de2807acc45cd252ed42f1383db7397ddb
Validity
Not Before: Jan 2 12:33:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc9ee327e8d301ef3fbdf7e72d2f3306de912949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f9:d2:d0:00:1c:41:dd:73:44:eb:a3:73:b4:
bb:1c:b0:0a:eb:90:fc:ab:74:63:f0:89:df:46:d0:
0c:60:33:17:ce:e9:f5:cc:e7:23:cf:e7:ab:34:44:
75:c4:84:3f:43:61:1d:b8:0c:23:8f:5c:23:51:ba:
83:34:f5:b8:cd:da:eb:9f:55:0e:2b:a2:60:98:46:
28:92:24:0b:3d:34:5b:82:8f:81:d4:c9:99:bf:7a:
e7:d3:f6:82:26:5d:23:b8:b4:ac:5a:b3:d4:5a:0c:
37:3b:de:74:7c:ad:86:0c:f5:d5:01:c6:d8:d9:da:
77:81:2d:66:7a:3b:12:13:44:45:1a:69:2f:61:dd:
ad:1a:71:5c:ca:f9:61:79:44:e8:04:03:bd:1d:1b:
64:e8:bb:62:f1:6e:24:e3:7d:0c:e1:bc:05:2e:38:
cf:b9:ed:b2:a6:f6:31:60:b5:20:ec:53:b2:db:41:
1f:29:f9:fd:8b:e0:c3:ce:a1:4c:a5:d2:c1:58:34:
43:98:85:8c:ad:8b:1d:2c:0c:62:5b:b2:ab:46:ca:
5f:dc:59:1b:78:12:20:65:79:a0:50:c4:0f:f2:07:
d4:99:0f:52:73:81:e0:ea:f1:7c:26:54:6b:7a:fd:
59:74:60:91:b8:4f:33:ee:71:7a:aa:f5:88:28:fa:
59:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9E:E3:27:E8:D3:01:EF:3F:BD:F7:E7:2D:2F:33:06:DE:91:29:49
X509v3 Authority Key Identifier:
keyid:95:3A:45:DE:28:07:AC:C4:5C:D2:52:ED:42:F1:38:3D:B7:39:7D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lTpF3igHrMRc0lLtQvE4Pbc5fds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/3J7jJ-jTAe8_vffnLS8zBt6RKUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/lTpF3igHrMRc0lLtQvE4Pbc5fds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.87.0/24
Signature Algorithm: sha256WithRSAEncryption
17:95:dd:66:ea:db:ba:c5:5e:41:a6:e4:1b:93:a0:c1:8b:39:
d1:ea:40:41:2d:1f:4a:32:23:bc:21:1e:69:06:40:d4:02:41:
9a:a8:44:dd:b1:1c:bf:4a:fb:bb:5e:c7:d5:63:4d:8e:ca:be:
53:bf:62:df:6e:00:51:4c:56:51:7a:0c:01:e9:4a:b7:a9:18:
4a:9e:75:54:4e:34:d4:26:95:58:98:cb:44:f4:73:5c:6c:25:
51:69:08:40:de:e0:61:5d:cf:a9:18:17:35:03:d7:6b:39:88:
4b:c3:61:65:80:7c:de:28:48:a1:17:45:67:00:63:97:8b:02:
92:39:27:1e:b4:2d:27:a2:a7:ca:74:f8:6a:c0:f1:4e:bd:19:
8d:77:6f:0c:53:42:bd:85:4e:08:1b:f2:35:5a:ff:2a:9d:29:
b4:18:bc:ae:46:0e:23:84:9f:32:25:0a:e0:51:e8:5d:a1:03:
cc:5e:40:90:f1:8b:85:4b:5a:45:97:de:95:31:bc:a3:f8:46:
6f:7f:77:19:ef:9b:72:b8:f9:15:2a:a7:9c:48:9e:57:ce:e7:
52:a3:68:f3:b9:63:e9:9b:7a:00:c2:84:32:32:50:c0:b1:99:
2b:38:af:8a:46:37:e8:82:0c:e1:df:5a:44:a1:a7:fd:e9:d7:
40:63:10:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 23:46:45 2024 by rpki-client on console.sobornost.net